This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS7488.roa File: AS7488.roa (raw, json) Hash identifier: hWMjsjDzH74Wa8gh7Z/h47wqM3DWRObIk/rlJZlDV7g= Subject key identifier: DF:27:AE:82:59:CD:CB:3E:C4:84:13:B2:3F:65:0A:45:A7:EE:81:19 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 64E0EE5AE554A1F5996C7C2B55FBB9916BFDE1C0 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS7488.roa Signing time: Tue 25 Nov 2025 10:31:45 +0000 ROA not before: Tue 25 Nov 2025 10:26:45 +0000 ROA not after: Tue 24 Nov 2026 10:31:45 +0000 asID: 7488 IP address blocks: 82.38.80.0/23 maxlen: 24 82.38.83.0/24 maxlen: 24 82.38.92.0/22 maxlen: 24 82.38.100.0/22 maxlen: 24 82.38.112.0/22 maxlen: 24 82.39.116.0/23 maxlen: 24 82.39.120.0/21 maxlen: 24 82.39.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 00:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:e0:ee:5a:e5:54:a1:f5:99:6c:7c:2b:55:fb:b9:91:6b:fd:e1:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Nov 25 10:26:45 2025 GMT Not After : Nov 24 10:31:45 2026 GMT Subject: CN=DF27AE8259CDCB3EC48413B23F650A45A7EE8119 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:42:f7:bf:ad:e9:2b:a8:ba:e3:fc:37:5e:25: 1d:f1:e6:ec:dc:a7:01:3e:db:94:c0:60:96:07:fc: e9:65:26:91:74:18:7e:80:7e:0a:fd:8e:e3:2f:6d: 7c:b4:ec:36:db:2c:bc:f0:db:ff:ff:b3:2e:5b:28: 5a:5a:01:49:97:fb:45:8e:ec:80:92:27:0f:32:26: 17:b1:0e:be:2d:fb:fd:45:ce:b8:41:04:a0:23:3c: d4:d0:1c:49:7e:d8:e6:f9:e8:8f:90:95:35:1d:ff: cb:0e:35:b3:56:c8:72:91:59:25:ac:ef:62:3e:50: d8:fb:5b:d5:a2:12:58:20:9b:c8:32:08:98:01:bc: 03:2e:73:c9:41:44:80:c4:5e:00:7a:b0:3d:d9:75: 63:f9:db:58:42:00:94:1f:15:ac:18:47:e0:85:81: 0a:63:24:e4:e5:d8:68:65:9d:f8:02:d6:2f:f2:15: 40:61:00:05:a9:03:72:a9:c2:61:38:5b:50:b3:2a: 98:50:2c:eb:8c:90:08:4c:48:6a:e2:e3:3d:77:e2: a6:36:4c:5f:ce:8c:8c:19:b6:5c:6d:30:43:52:fd: b2:6d:a2:6b:d8:cc:bf:66:50:32:0c:ad:34:f2:ba: 52:7f:01:f9:bb:39:6b:3b:10:37:ec:c2:f2:98:f8: e9:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:27:AE:82:59:CD:CB:3E:C4:84:13:B2:3F:65:0A:45:A7:EE:81:19 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS7488.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.38.80.0/23 82.38.83.0/24 82.38.92.0/22 82.38.100.0/22 82.38.112.0/22 82.39.116.0/23 82.39.120.0-82.39.131.255 Signature Algorithm: sha256WithRSAEncryption 24:29:90:2f:06:95:04:5d:f2:65:8a:f8:4e:0a:5d:b2:e8:ae: 2f:89:a7:aa:35:b6:21:5f:ac:05:c7:11:5a:b3:4f:6c:bf:55: 92:99:76:a1:94:95:6d:fe:80:39:62:c3:4e:32:9e:7f:80:fa: f2:9d:d7:f1:48:3b:ad:dc:b9:7a:3e:67:5d:ba:f4:70:b7:e6: 4b:1c:e5:e0:40:db:51:df:43:71:ae:7d:d0:5f:30:f7:ef:20: 60:80:3a:aa:ee:1b:d5:53:b4:b2:1d:91:a4:f7:1e:99:5a:33: 90:67:31:ae:b8:58:d5:57:1c:71:8a:eb:0d:4a:0e:80:54:f1: 52:86:ae:76:06:34:9c:42:0d:91:c0:2a:d3:65:53:54:f5:ea: 15:49:8b:3e:0e:2c:fa:25:b0:db:9e:ed:7b:0f:86:66:44:fd: fb:d7:1b:25:af:4b:79:99:be:c3:ee:fb:77:ba:fe:8c:40:da: 09:5b:62:fb:9b:0a:7e:74:c8:74:af:de:f8:5b:0e:66:32:2d: 33:5c:86:01:b1:0c:eb:3a:d9:99:4e:af:ec:c3:33:15:18:f6: 3f:ca:9c:4e:a2:cb:3c:f9:39:52:7b:24:3c:91:d8:5c:53:59: 9c:56:b6:bd:84:3f:45:0b:6a:f3:52:fe:ee:22:a3:34:26:d2: 60:dd:7a:f6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZODuWuVUofWZbHwrVfu5kWv94cAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTExMjUxMDI2NDVaFw0yNjExMjQxMDMxNDVaMDMxMTAvBgNV BAMTKERGMjdBRTgyNTlDRENCM0VDNDg0MTNCMjNGNjUwQTQ1QTdFRTgxMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcQve/rekrqLrj/DdeJR3x5uzc pwE+25TAYJYH/OllJpF0GH6Afgr9juMvbXy07DbbLLzw2///sy5bKFpaAUmX+0WO 7ICSJw8yJhexDr4t+/1FzrhBBKAjPNTQHEl+2Ob56I+QlTUd/8sONbNWyHKRWSWs 72I+UNj7W9WiElggm8gyCJgBvAMuc8lBRIDEXgB6sD3ZdWP521hCAJQfFawYR+CF gQpjJOTl2GhlnfgC1i/yFUBhAAWpA3KpwmE4W1CzKphQLOuMkAhMSGri4z134qY2 TF/OjIwZtlxtMENS/bJtomvYzL9mUDIMrTTyulJ/Afm7OWs7EDfswvKY+Ol5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3yeuglnNyz7EhBOyP2UKRafugRkwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNzQ4OC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjBLBggrBgEFBQcBBwEB/wQ8MDowOAQCAAEwMgMEAVImUAME AFImUwMEAlImXAMEAlImZAMEAlImcAMEAVIndDAMAwQDUid4AwQCUieAMA0GCSqG SIb3DQEBCwUAA4IBAQAkKZAvBpUEXfJlivhOCl2y6K4viaeqNbYhX6wFxxFas09s v1WSmXahlJVt/oA5YsNOMp5/gPryndfxSDut3Ll6PmdduvRwt+ZLHOXgQNtR30Nx rn3QXzD37yBggDqq7hvVU7SyHZGk9x6ZWjOQZzGuuFjVVxxxiusNSg6AVPFShq52 BjScQg2RwCrTZVNU9eoVSYs+Diz6JbDbnu17D4ZmRP371xslr0t5mb7D7vt3uv6M QNoJW2L7mwp+dMh0r974Ww5mMi0zXIYBsQzrOtmZTq/swzMVGPY/ypxOoss8+TlS eyQ8kdhcU1mcVra9hD9FC2rzUv7uIqM0JtJg3Xr2 -----END CERTIFICATE-----Generated at Thu Dec 4 06:01:43 2025 by rpki-client